Explore a groundbreaking approach to privacy risk assessments in this 15-minute conference talk from PEPR '23. Delve into the critical gap in current industry frameworks for data privacy compliance and discover a contextual, risk-based methodology for internal privacy risk management. Learn how to implement a persona-based approach that enables organizations to assess their unique risk appetite, create prioritized risk assessments, and adapt to evolving global privacy regulations. Gain insights into user journeys, data lifecycles, and the full spectrum of potential data subjects on a global scale. Uncover strategies for developing fit-for-purpose, sustainable risk assessments that bridge the gap between regulatory requirements and the unique attributes of individual businesses.
The Missing Link in Privacy Risk Assessments - A Persona-Based Approach
Overview
Syllabus
PEPR '23 - The Missing Link in Privacy Risk Assessments
Taught by
USENIX
Related Courses
-
Data Privacy and Protection Standards
-
Data Privacy, Security, Governance, Risk and Compliance
-
NIST Privacy Framework
-
Risk Management and Risk Assessment in a Healthcare Setting
-
De-identified, Anonymized, or Aggregated Data - A Global Regulatory Comparison
-
Beware, Data Processing! Proposing Categories for Risk Communication Related to Personal Data
